Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227911	6.8	警告	Joomla!	-	Joomla! 用の com_performs における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3774	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227912	6.8	警告	Mambo Foundation	-	Joomla! および Mambo 用の Bridge コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-3773	2012-12-20 18:02	2006-07-10	Show	GitHub Exploit DB Packet Storm

227913	5.1	警告	php-post	-	PHP-Post における管理者権限を取得される脆弱性	-	CVE-2006-3772	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227914	7.5	危険	imaginex-resource	-	iManage CMS の component.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-3771	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227915	7.5	危険	phpfaber	-	phpFaber TopSites の index.php における SQL インジェクションの脆弱性	-	CVE-2006-3770	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227916	2.6	注意	top xl	-	Top XL におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3769	2012-12-20 18:02	2006-07-24	Show	GitHub Exploit DB Packet Storm

227917	6.4	警告	intervations	-	FileCOPA FTP Server の filecpnt.exe における整数アンダーフローの脆弱性	-	CVE-2006-3768	2012-12-20 18:02	2006-07-28	Show	GitHub Exploit DB Packet Storm

227918	6.8	警告	darrens 5-dollar script archive	-	Darren's $5 Script Archive osDate の showprofile.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3767	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227919	5	警告	darrens 5-dollar script archive	-	Darren's $5 Script Archive osDate における本人のレートを格上げできる脆弱性	-	CVE-2006-3766	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

227920	4.3	警告	huttenlocher webdesign	-	Huttenlocher Webdesign hwdeGUEST におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-3765	2012-12-20 18:02	2006-07-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211431	6.2	MEDIUM Local	microsoft	windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	Kerberos in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 Gold and 1511 does not properly validate passw…	CWE-255 Credentials Management	CVE-2016-0049	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211432	7.8	HIGH Local	microsoft	windows_rt_8.1 windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0048	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211433	7.5	HIGH Network	microsoft	.net_framework	WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attackers to obtain sensitive information from process memory via crafted icon data, aka "Windows Forms I…	CWE-200 Information Exposure	CVE-2016-0047	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211434	7.8	HIGH Local	microsoft	windows_server_2012 windows_8.1 windows_10	Windows Reader in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows remote attackers to execute arbitrary code via a crafted Reader file, aka "Microsoft Windows Reader Vul…	CWE-20 Improper Input Validation	CVE-2016-0046	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211435	7.5	HIGH Network	microsoft	windows_server_2012 windows_8.1 windows_rt_8.1	Sync Framework in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1 allows remote attackers to cause a denial of service (SyncShareSvc service outage) via crafted "change batch" data,…	CWE-20 Improper Input Validation	CVE-2016-0044	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211436	7.8	HIGH Local	microsoft	windows_rt_8.1 windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle DLL loading, which…	NVD-CWE-Other	CVE-2016-0042	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211437	7.8	HIGH Local	microsoft	windows_rt_8.1 internet_explorer windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold and 1511, and Internet Explorer 10 and 11…	NVD-CWE-Other	CVE-2016-0041	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211438	7.8	HIGH Local	microsoft	windows_server_2008 windows_7 windows_vista	The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka "Windows Elevation of Privilege V…	NVD-CWE-noinfo	CVE-2016-0040	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211439	6.1	MEDIUM Network	microsoft	sharepoint_foundation	Cross-site scripting (XSS) vulnerability in SharePoint Server in Microsoft SharePoint Foundation 2013 SP1 allows remote attackers to inject arbitrary web script or HTML via a crafted request, aka "Mi…	CWE-79 Cross-site Scripting	CVE-2016-0039	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

211440	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_7 windows_vista	Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 Gold and 1511 allows remote attackers t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-0038	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm